Third Party risk management is commonly seen through the lens of risk assessment and mitigation. This is very often appropriate. But given the asymmetric relationship between large customers and a cast number of small sub-contractors/suppliers, we need to consider cybersecurity assessments of small firms through the lens of raising awareness. The session will explore using a common method for assessing third party risk, the questionnaire, as a tool for increasing awareness of controls.
David Sheidlower, CISO, Turner Construction
Vikas Bhatia, CEO, JustProtect